Pexip Government Cloud: Join Teams from any device FedRAMP® and StateRAMP Authorized

Pexip Privacy Notice

Last updated: October 17, 2022

1. Introduction

 

At Pexip AS (hereinafter, “we” or “us” or “our” or “Pexip”), we sincerely care about privacy, security, and transparency; these core elements play a substantial role in our company’s mission. This privacy notice covers the Pexip service, which is a branded service owned and operated by Pexip AS, Pexip branded applications, products, software, and websites. It outlines how and why we collect, store, and process the personal data of users that interact with us, visiting our websites, using our services, using our interactive applications, using our integrations with third-party services, or other products and services, including software downloads.

 

 

2. Pexip's role

 

We offer different services and may consequently hold different roles when we process personal data in relation to the Pexip service and the Pexip branded products, software, and websites: 
  1. Pexip as data controller: Pexip acts as the data controller for the personal data you provide to us through our branded websites or other direct interactions, like new hire application or subscribing to newsletters.
  2. Pexip as data processor (or subprocessor): Pexip acts as the data processor or subprocessor for the personal data you provide to us when you activate and use the Pexip service or products or software through any of the Pexip partners who are authorized to sell the Pexip service or products or software. When Pexip acts as the data processor or subprocessor, all processing of your personal data by Pexip will be governed by a data processing agreement between Pexip and the partner and/or the customer, and this data processing agreement will constitute Pexip's legal basis for the processing

 

 

3. How we collect your data

 

We may collect a variety of information depending on how you interact with us, the Pexip Service or products, or our websites. This information can be collected using direct interactions, automation, or third parties. Here’s more information about these methodologies:

 

Direct interactions

 

We may receive your personal data directly when you, for example:

  • Contact us directly, e.g. using email, chat, or contact forms
  • Request marketing information to be sent to you 
  • Download software
  • Participate in an online survey
  • Submit an application
  • Provide us feedback

 

Automated technologies or interactions

 

When you use our website or our services, we may collect technical data about your computing system and browsing activity. This data is gathered by employing cookies and related tools. To learn more about the cookies we utilize on this site please refer to our cookie notice.

 

Third parties

 

Your personal data may be received via a third party as follows:
  • Via analytics through providers such as Google Analytics or Hubspot
  • Via a Pexip authorized partner reselling the Pexip products or services
  • Via a customer of an authorized partner purchasing the Pexip products or services
  • Google to manage Google Meet service interoperability
  • Microsoft to manage the following Pexip services:
    • Microsoft Teams interoperability
    • One-Time Rooms through the Pexip Outlook add-in
    • One-Touch Join for Pexip Service on a video endpoint
  • If using the optional integration with YouTube live events & recording: from Google to store your Google account details for YouTube live events and recording authentication, and YouTube to store your live recording link, title and time of streaming. The Google privacy policy (http://www.google.com/policies/privacy) applies when Google processes your personal data related to your use of YouTube integration with the Pexip service. The Pexip live events & recordings third-party app can be revoked from your Google account (https://security.google.com/settings/security/permissions)
  • Via a customer that has enabled live captions on their self-hosted Pexip software
  • From service providers, for third party tools we use to manage day to day business operations, including companies such as:
    • Salesforce to manage clients and processes
    • Hubspot to communicate with you
    • Social Media platforms such as Facebook, LinkedIn, Instagram, and YouTube for collaboration and advertising purposes

 

 

4. The type of data we collect

 

Pexip collects data in order to provide the best experiences we can when you visit Pexip branded websites or use Pexip branded products and services.

Please note that it is possible to visit our websites without providing personal data about yourself.

However, in order for you to best utilize the resources and information we offer on our website (for example downloading product brochures, eBooks, sign up for our newsletter), or use our products and services, we will need to collect some personal data from you to provide the services and the information that you request of us. You may not be able to use some of our products and services if you decline our collection of your personal data. Examples of personal data we collect:

  1. Contact and personal details: name, email, phone number, occupation.
  2. Credentials: passwords, saved user preferences, security settings.
  3. Demographic information: your geographic location, time zone, preferred language.
  4. Device and usage data: how you use our apps, when you accessed our service, what type of device you use, your IP address, the internet address you accessed our services from, your internet service provider.
  5. Payment details: When relevant, we will collect any necessary information required to process your payment.
  6. Your contacts: if you use a Pexip branded product in combination with a registered Pexip account, to manage or access contacts, or to communicate with other people and organizations, we may collect information about your relationships and interactions with those contacts.
  7. Your image: for example, if you choose to store a personal image under the user profile of your Pexip account or any third party services Pexip interacts with.

 

 

5. How we use the data we collect

 

We process the personal data you provide to us in strict accordance with the principles outlined in this privacy notice. We have the following purposes and legal basis for collecting and using your personal data:

  1. To enable you to use our services: in order for you to use the Pexip service you have to activate an account with Pexip or be invited by your service administrator. Upon such invitation and/or activation we require some personal data, including contact details, login information etc. Such processing is based on the contract entered into when subscribing to the services via the Pexip partner who are authorized to sell the Pexip service.
  2. Delivery of services: To operate and deliver our services, products, software and websites effectively, Pexip may process personal data such as demographic information, time zone, occupation, call history, preferred user settings and other information related to your use of the services or making product recommendations based on your device or current location, or send important notifications to communicate information necessary to the continued use of our products or services. Pexip processes such personal data based on our legitimate interest in delivering our services, products, software, and websites to you in an effective way.
  3. Customer support: we might use data to diagnose and fix service and product problems and issues, as well as providing more effective customer care. Pexip processes such personal data based on our legitimate interests in fulfilling our contractual and legal obligations according to a contract or order.
  4. Contract management: In connection with the administration and management of contracts with Pexip's customers, suppliers etc., Pexip may process personal data such as contact information of contact persons at such customers, suppliers etc. Pexip processes such personal data based on our legitimate interests in fulfilling our contractual and legal obligations according to a contract or order.
  5. To respond to inquiries: Pexip may also process personal data in order to follow-up inquiries from website users, users of our services, social media etc. The legal basis for such processing is Pexip's legitimate interest in providing support to its users.
  6. Submitting information about the services to registered users: Pexip may process your personal data in order to send notifications or information pertaining to the services or your account that are necessary in order to the continued use of our products or services. This will typically be information about changes in our terms, this privacy notice etc. Such processing is based on the contract entered into when subscribing to the services, or Pexip's legitimate interest in providing certain information about the use of the services (depending on the type of information).
  7. Improving our products and services: To help us understand and improve our products and service, as well as the content we offer (e.g. in order to send communications relevant to our users), as well as the information and content we provide on Pexip branded websites. Such processing is based on our legitimate interest in improving our services, our website etc.
  8. Security and safety: we must use data in order to protect the security of our products and users. This can include (but is not limited to) detection of fraud and malicious software, confirming the validity of software licenses, and resolving disputes or enforcing our service agreement. Pexip processes such personal data based on our legitimate interests in fulfilling our contractual and legal obligations according to a contract or order.
  9. Relevant sales and marketing communications: You will receive marketing communications if you have requested information from us, purchased products or services from us or if you provided us with your details when you subscribed to our newsletter, signed up for seminars or events organized by us or our partners or any other forms on our website and, in each case, you have not opted out of receiving such communication. You’re able to opt out from our mailing list by using the unsubscribe link at the bottom of such emails.
  10. Recruitment: If you apply to a position in Pexip, Pexip may process your personal data in order to assess your application. The legal basis for such processing is that it is necessary in order to fulfill the contract with the candidate, or in order to take steps at the request of the candidate prior to entering into a contract. Applications will normally be stored for [1] year after the completion of the application process unless you consent to further storage.
  11. Ensure compliance and legitimate interests: Pexip may also process personal data in order to comply with statutory obligations to which Pexip is subject, and to safeguard own or third parties legitimate interests, e.g. in relation to establishing a legal claim or preventing unauthorized access to or disclosure of personal data.

 

 

6. How long we use your data

 

We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for (as described in this privacy notice), including for the purposes of satisfying any legal, accounting or contractual obligations, or any reporting requirements or laws.

For personal data related to your specific use of our products and services, for example your call history, our stated policy is to retain that data as long as we have a legitimate purpose or legal basis for processing (in accordance with the purposes described in this privacy notice), unless otherwise impacted by one of the listed criteria below:

  1. How long do we need access to the data for in order to deliver our products and services and maintain effective business operations?
  2. Is there a reasonable expectation from customers that we will store their personal data until they explicitly request us to delete it? 
  3. Is Pexip, as the owner and operator of the Pexip service, subject to legal, contractual, regulatory, or similar, obligations to retain certain types of data? For example, mandatory data retention laws in your region, or government requests and investigations.

When your personal data is no longer needed to be retained for any of the purposes stipulated in this privacy notice, we may delete or anonymize your personal data. Anonymized data - i.e. data that can no longer be associated with you as an individual - may be further used for research and statistical purposes in which case we may use this information indefinitely without further notice to you.

 

 

7. Disclosure and storage of personal data

 

As part of our product and service delivery, Pexip works with various partners who are authorized to sell Pexip branded products or services on behalf of Pexip. We also use some tools managed by third-party service providers in order to fulfill the delivery of certain aspects of our products and services.

We will never, ever provide or sell personal data to organizations not recognized as a Pexip partner, or otherwise connected to helping us deliver operations to customers essential to our products and services. 

  1. Disclosure of data to Pexip partners: where appropriate, we may provide your personal data to Pexip partners in order to fulfill your request for service delivery or further information: 
    1. A Pexip partners is a B2B partner officially authorized to resell Pexip products and services on our behalf 
    2. In the event we share personal data with a partner, we will only do so in order to fulfill service delivery or improve our products and services
    3. Personal data will not be shared with a partner for general marketing purposes

  2. Sharing data with third-party services providers ("subprocessors"): where necessary, Pexip shares personal data with subprocessors who provide essential services for delivering our products and services to customers. These might include services for:
    1. Information processing, payment processing, credit checks, fulfilling customer orders, delivering products to you, managing and enhancing customer data, providing customer service, assessing your interest in our products and services, and conducting customer research or satisfaction surveys.
    2. Some of these companies operate and store data outside of the EU.
    3. All of our third-party service providers are checked to ensure they comply with EU and applicable local data privacy and security regulations.
    4. All processing by such third parties are subject to a data processing agreement, which, among other things, limits such third parties' use of the personal data to the performance of the agreed services.
    5. The current list of Pexip subprocessors can be found here.

  3. Disclosure of data to comply with legal or public jurisdiction requests: in rare circumstances, where we are compelled, by law, legal process, litigation, and/or requests from public and governmental authorities within or outside your country of residence to disclose your personal data. We may also:
    1. Disclose information about you if we determine that to do so is necessary or appropriate for reasons of national security, law enforcement, or other major issues of public importance
    2. Disclose information about you if we determine that disclosure is reasonably necessary to enforce our terms of service or protect our operations or users
    3. In the event of a re-organization, merger, or sale we may transfer any or all personal data we collect to the relevant third party

  4. External websites: where relevant, in order to provide additional information on certain topics, our websites may link to external websites we do not own or manage:
    1. We cannot control, and are not responsible for, how these websites collect and use information
    2. This privacy notice is valid only for Pexip branded domains, owned and managed by Pexip AS, as the owner and operator of the Pexip service. When using such third party websites, we recommend that you read the relevant sites terms and privacy notice.

  5. Presenters: At the request of any person who hosts and/or presents information in a conference ("presenters"), the Pexip service may collect certain personal data and other information which any presenter in any conference may see and may be shared with other users of the service at the request of a presenter or as an automatic function of the service, including without limitation:
    1. Your name, address, phone number, and email address
    2. Any other personal data or other information you provide to the service or as requested by any presenter

  6. Storage: Personal Data and other information may be stored and/or processed in multiple locations in which Pexip or its subprocessors maintain facilities. Pexip will ensure that all such locations and subprocessors comply with EU and applicable local data privacy and security regulations, e.g. by use of EU model clauses, binding corporate rules, GDPR Article 49 derogations.

 

 

8. Protection and security of personal data

 

When operating the Pexip service and Pexip branded products, Pexip takes great care to ensure all reasonable precautions— including administrative, technical, and physical measures— to safeguard your personal data against loss, theft, and misuse, as well as against unauthorized access, disclosure, alteration, and destruction.

  1. All Pexip branded web pages and online services or products use HTTPS to protect the confidentiality of your personal data
  2. The Pexip Service is deployed via a globally-distributed network of resources 
    1. Services are hosted and maintained at geographically-specific “Points-of-Presence” (PoPs) as well as within cloud-based services that have global availability
    2. Pexip PoPs are hosted at data centers managed by facility service providers. Each facility meets or exceeds international security compliance standards
    3. Personal data collected through Pexip service may be stored and processed in any country in which Pexip and its subprocessors maintain facilities
    4. By registering for and using Pexip services, you are accepting to the transfer of data to any country in which Pexip and its subprocessors maintain facilities, as well as the use and disclosure of your personal data as described in this privacy notice

 

 

9. Access and control of your personal data

 

You have the right to access the information we have about you at any time, as well as request the personal data we store about you is deleted, modified, or exported for portability reasons. 

 

For accessing, modifying, or exporting your personal information, to request that we delete your personal data, or to report a complaint, please submit your request via email to privacy@pexip.com The request will be processed and completed in compliance with our privacy notice, terms of service, our business relationship and any data privacy laws applicable in your country.

 

If the processing is based on your consent, you may also withdraw your consent at any time (without affecting the lawfulness of processing based on consent before its withdrawal). If you have previously consented to receive promotional email communications from us, you can use the unsubscribe function at the bottom our emails to unsubscribe from our emails at any time (“withdraw your consent”).

 

If you have an active Pexip account, it’s not possible to opt-out of basic emails since we need to communicate basic information, where relevant, to users in order to continue delivery of the account.

 

Since Pexip’s global headquarters are located in Norway, we are governed by Norway’s Data Protection Directive, as well as the EU's GDPR (“general data protection regulation”) to ensure our privacy policy is being followed.

 

If you experience anything you think is a violation of the regulations, you may submit a written request to the Data Protection Directive’s postal address:

 

Datatilsynet, PO Box 8177, 0034 Oslo, Norway.
 
 

10. Commitment to Data Protection

 

Pexip is committed to the highest standards of information security, privacy and transparency. Towards this, Pexip complies with data protection laws around the world where we process information and protect data subject rights. These include: 

  • EU Regulation 2016/679 (the GDPR)
  • EU Regulation 2018/1725
  • UK General Data Protection Regulation (UK GDPR)
  • UK Data Protection Act 2018 (DPA 2018)
  • California Consumer Privacy Act of 2018 (CCPA)
  • LGPD Brazilian Data Protection Law (LGPD) as amended by Law No. 13,853/2019
  • Norwegian Personal Data Act
  • Swiss Federal Act on Data Protection (FADP)

If you are a California resident, the California Consumer Privacy Act of 2018 (CCPA), may provide you with additional privacy rights with respect to the collection and use of your personal information. To learn more about your California privacy rights, please read our Supplemental Privacy Notice for California Residents.

 

For any questions regarding the Pexip commitment to data protection or any other privacy processes, please contact privacy@pexip.com.

 
 

11. Future changes to our privacy notice

 

As our business grows and our services and products evolve, this privacy notice may change, or other privacy notices may be written and posted specifically to address new offerings or to keep pace with data privacy laws.

 

When changes are substantial, we will first ensure to make you aware of any forthcoming changes by attempting to contact you directly via email, or via our user interfaces, or via indirectly through your authorized partner which is reselling the Pexip service or product. 

 

 

 

[Back to top]